General

  • Target

    c05f61a1ae17f6a95dbb59f1d9ed5d88_JaffaCakes118

  • Size

    432KB

  • Sample

    240825-kqpp1svglg

  • MD5

    c05f61a1ae17f6a95dbb59f1d9ed5d88

  • SHA1

    cda9ce8e2a62b4edd447e2368afc62d99a6e2a91

  • SHA256

    7b90a97f8e43c03bd0a9e13135e5326599dd63c96be2b67d6fcf56be4b4dc354

  • SHA512

    f1bd0149d01fa608a2816ed648b880157d049233ee6fecef7d3dfc97ce60f7e4033edc984fc7ab220f08c37d9e3ebd711cda25d629a4d8542562ba268a4f2a44

  • SSDEEP

    12288:qUCmZiCP+Xr29pVAo3PeTdCa+7X5ahlJ3zZUPKN:AC26pVAofeTAak5ClJ3WPK

Score
10/10

Malware Config

Targets

    • Target

      c05f61a1ae17f6a95dbb59f1d9ed5d88_JaffaCakes118

    • Size

      432KB

    • MD5

      c05f61a1ae17f6a95dbb59f1d9ed5d88

    • SHA1

      cda9ce8e2a62b4edd447e2368afc62d99a6e2a91

    • SHA256

      7b90a97f8e43c03bd0a9e13135e5326599dd63c96be2b67d6fcf56be4b4dc354

    • SHA512

      f1bd0149d01fa608a2816ed648b880157d049233ee6fecef7d3dfc97ce60f7e4033edc984fc7ab220f08c37d9e3ebd711cda25d629a4d8542562ba268a4f2a44

    • SSDEEP

      12288:qUCmZiCP+Xr29pVAo3PeTdCa+7X5ahlJ3zZUPKN:AC26pVAofeTAak5ClJ3WPK

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks